$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A7E78F5A27E21658A040D41B16F6AC7D4AD5982A5B5E92C559FB0D9143E9172C/0/323830363a3363633a3a2f33322d3332203d3e20323635353233.roa File: 323830363a3363633a3a2f33322d3332203d3e20323635353233.roa (raw, json) Hash identifier: DgfYP2iRnR4qTLzrFyyiCON9FpL+gkkV4J9ipz4hIls= Subject key identifier: 35:EA:3B:3B:3E:BC:5A:49:A7:28:86:F7:BF:13:85:A5:71:ED:B2:AA Certificate issuer: /CN=914352F6071C82AE424F2740F43122F9D595BDB5 Certificate serial: 4A4060EE191DA3879234F593BC464CD93E38DA20 Authority key identifier: 91:43:52:F6:07:1C:82:AE:42:4F:27:40:F4:31:22:F9:D5:95:BD:B5 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/914352F6071C82AE424F2740F43122F9D595BDB5.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A7E78F5A27E21658A040D41B16F6AC7D4AD5982A5B5E92C559FB0D9143E9172C/0/323830363a3363633a3a2f33322d3332203d3e20323635353233.roa Signing time: Tue 04 Feb 2025 18:27:53 +0000 ROA not before: Tue 04 Feb 2025 18:22:53 +0000 ROA not after: Tue 03 Feb 2026 18:27:53 +0000 asID: 265523 IP address blocks: 2806:3cc::/32 maxlen: 32 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/A7E78F5A27E21658A040D41B16F6AC7D4AD5982A5B5E92C559FB0D9143E9172C/0/914352F6071C82AE424F2740F43122F9D595BDB5.crl rsync://repository.lacnic.net/rpki/lacnic/A7E78F5A27E21658A040D41B16F6AC7D4AD5982A5B5E92C559FB0D9143E9172C/0/914352F6071C82AE424F2740F43122F9D595BDB5.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/914352F6071C82AE424F2740F43122F9D595BDB5.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Tue 22 Apr 2025 11:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:40:60:ee:19:1d:a3:87:92:34:f5:93:bc:46:4c:d9:3e:38:da:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=914352F6071C82AE424F2740F43122F9D595BDB5 Validity Not Before: Feb 4 18:22:53 2025 GMT Not After : Feb 3 18:27:53 2026 GMT Subject: CN=35EA3B3B3EBC5A49A72886F7BF1385A571EDB2AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:eb:39:35:2d:e1:9e:fa:20:fa:79:bd:77:5e: 8a:b4:3c:14:45:1b:48:f9:4c:1e:f0:e8:51:fe:aa: 2a:71:00:09:69:6a:66:17:d3:e6:e9:3a:90:ac:5d: 94:38:97:e0:8e:53:a1:9c:8f:d2:f9:d6:f0:c6:73: 76:80:ec:a5:bd:7c:29:2f:96:e7:19:8e:19:54:33: 87:ae:bd:b9:d6:14:e3:60:01:32:a6:bb:b4:ad:ba: 8a:c5:75:89:03:ff:e5:0b:82:f6:36:e8:c7:0e:7e: 73:77:55:f3:40:14:2e:d2:83:c3:07:84:9d:91:76: ef:57:67:3f:2f:21:2b:5b:7d:ef:c8:3d:4c:c6:f2: 6f:fc:1e:cc:fa:7b:94:db:46:ce:55:ab:dc:42:b4: b2:c5:43:aa:03:f7:46:36:13:6f:0a:6a:e9:b2:eb: 5e:46:85:fe:14:f9:37:8b:62:34:e4:1a:87:35:8a: 8b:50:a0:19:24:5b:3d:e6:ec:79:9f:58:89:3a:1c: 50:cf:4c:97:33:75:32:59:77:02:1d:a6:67:6d:e6: a4:2b:a0:0e:73:6d:2d:b4:4e:fa:84:b5:92:85:86: 98:69:82:85:1f:e6:d1:65:35:55:12:51:bd:cd:df: 76:d0:44:03:5a:8a:76:50:81:8c:29:9e:6f:61:75: fb:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EA:3B:3B:3E:BC:5A:49:A7:28:86:F7:BF:13:85:A5:71:ED:B2:AA X509v3 Authority Key Identifier: keyid:91:43:52:F6:07:1C:82:AE:42:4F:27:40:F4:31:22:F9:D5:95:BD:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/A7E78F5A27E21658A040D41B16F6AC7D4AD5982A5B5E92C559FB0D9143E9172C/0/914352F6071C82AE424F2740F43122F9D595BDB5.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/914352F6071C82AE424F2740F43122F9D595BDB5.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A7E78F5A27E21658A040D41B16F6AC7D4AD5982A5B5E92C559FB0D9143E9172C/0/323830363a3363633a3a2f33322d3332203d3e20323635353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2806:3cc::/32 Signature Algorithm: sha256WithRSAEncryption 37:50:0c:b7:81:89:4d:83:81:18:44:d4:4b:54:61:ab:48:4b: a3:91:42:fb:1b:89:ca:3e:6c:a0:dd:c8:ee:62:5e:01:6d:66: b9:a7:1d:63:5d:62:5a:ec:26:17:9b:e1:c9:54:1c:73:ec:c2: 83:6c:3f:d1:15:9c:ef:fe:ba:1e:b9:d6:6e:7b:50:14:7a:aa: 80:6d:fd:69:0a:47:be:89:d2:ad:60:67:3f:f9:03:af:57:77: 2f:d8:8c:1a:68:ab:82:25:d6:f4:50:88:e3:d0:5d:c3:e0:70: 9f:54:00:f5:e5:de:62:94:c8:af:43:e3:11:46:df:c3:a0:54: 78:47:d2:c7:73:c0:a6:9b:e5:76:14:23:e7:9f:35:67:f3:41: af:7a:a2:b9:bc:5b:ef:82:2a:50:27:85:18:92:c5:dc:ca:2d: 7b:9e:c9:e7:45:c1:be:0d:85:6f:f4:cf:c7:0d:c1:af:e7:57: 0f:17:d8:0f:0a:6e:7b:53:82:7c:bb:78:2e:91:e5:ed:b0:2b: 81:e7:30:64:e6:1c:62:8d:ed:4e:23:9f:3f:13:c2:f0:82:36: db:a6:20:03:70:45:77:1d:3a:c9:b7:b4:e7:69:58:9e:34:92: c3:b1:db:7d:52:0b:73:63:9a:3b:2a:35:18:29:f0:70:25:13: 80:91:9e:63 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIUSkBg7hkdo4eSNPWTvEZM2T442iAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE0MzUyRjYwNzFDODJBRTQyNEYyNzQwRjQzMTIyRjlE NTk1QkRCNTAeFw0yNTAyMDQxODIyNTNaFw0yNjAyMDMxODI3NTNaMDMxMTAvBgNV BAMTKDM1RUEzQjNCM0VCQzVBNDlBNzI4ODZGN0JGMTM4NUE1NzFFREIyQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy6zk1LeGe+iD6eb13Xoq0PBRF G0j5TB7w6FH+qipxAAlpamYX0+bpOpCsXZQ4l+COU6Gcj9L51vDGc3aA7KW9fCkv lucZjhlUM4euvbnWFONgATKmu7StuorFdYkD/+ULgvY26McOfnN3VfNAFC7Sg8MH hJ2Rdu9XZz8vIStbfe/IPUzG8m/8Hsz6e5TbRs5Vq9xCtLLFQ6oD90Y2E28Kaumy 615Ghf4U+TeLYjTkGoc1iotQoBkkWz3m7HmfWIk6HFDPTJczdTJZdwIdpmdt5qQr oA5zbS20TvqEtZKFhphpgoUf5tFlNVUSUb3N33bQRANainZQgYwpnm9hdfvVAgMB AAGjggLHMIICwzAdBgNVHQ4EFgQUNeo7Oz68WkmnKIb3vxOFpXHtsqowHwYDVR0j BBgwFoAUkUNS9gccgq5CTydA9DEi+dWVvbUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy9BN0U3OEY1QTI3RTIxNjU4QTA0MEQ0MUIxNkY2QUM3RDRB RDU5ODJBNUI1RTkyQzU1OUZCMEQ5MTQzRTkxNzJDLzAvOTE0MzUyRjYwNzFDODJB RTQyNEYyNzQwRjQzMTIyRjlENTk1QkRCNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MTQzNTJGNjA3MUM4MkFFNDI0 RjI3NDBGNDMxMjJGOUQ1OTVCREI1LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s YWNuaWMvQTdFNzhGNUEyN0UyMTY1OEEwNDBENDFCMTZGNkFDN0Q0QUQ1OTgyQTVC NUU5MkM1NTlGQjBEOTE0M0U5MTcyQy8wLzMyMzgzMDM2M2EzMzYzNjMzYTNhMmYz MzMyMmQzMzMyMjAzZDNlMjAzMjM2MzUzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoBgPMMA0G CSqGSIb3DQEBCwUAA4IBAQA3UAy3gYlNg4EYRNRLVGGrSEujkUL7G4nKPmyg3cju Yl4BbWa5px1jXWJa7CYXm+HJVBxz7MKDbD/RFZzv/roeudZue1AUeqqAbf1pCke+ idKtYGc/+QOvV3cv2IwaaKuCJdb0UIjj0F3D4HCfVAD15d5ilMivQ+MRRt/DoFR4 R9LHc8Cmm+V2FCPnnzVn80GveqK5vFvvgipQJ4UYksXcyi17nsnnRcG+DYVv9M/H DcGv51cPF9gPCm57U4J8u3gukeXtsCuB5zBk5hxije1OI58/E8LwgjbbpiADcEV3 HTrJt7TnaVieNJLDsdt9UgtzY5o7KjUYKfBwJROAkZ5j -----END CERTIFICATE-----Generated at Fri Apr 18 16:49:11 2025 by rpki-client